This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft File: HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft (raw, json) Hash identifier: 99nb+nEpCbFFiALsQVUUBg7O3OB0q1sxCw1GSes8kfM= Subject key identifier: 89:F4:71:AE:9D:6C:31:A8:F3:E5:44:E4:4A:B2:72:D8:D8:1D:55:0A Authority key identifier: 1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34 Certificate issuer: /CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34 Certificate serial: 019C41A1D33D1396D46D397C2E4FE0DC8B3C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft Manifest number: 1818 Signing time: Mon 09 Feb 2026 09:00:50 +0000 Manifest this update: Mon 09 Feb 2026 09:00:50 +0000 Manifest next update: Tue 10 Feb 2026 09:00:50 +0000 Files and hashes: 1: 1XzbCZ6yY8fKoxvI53eQ_YxAoE8.roa (hash: 2cHGvx3rw1zFTiwFmSKRPxp+Yh74QRl9au/Y2339KsI=) 2: Eb64F3v1oYAj-E_RQC6TCD6A0Qo.roa (hash: 5S7unqujHWRwDHCe4gkQrhEC290D97kkFboUxzuHNTk=) 3: HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl (hash: 20Y5BXj6Q48T72EgwcyZCPH6o45/npI34HRAEUTRhp4=) 4: I5oIKyc-Nnsg2P5sBEZFMHv808I.roa (hash: A5np8yhL8kgzony1w/u2xXkkcbdyP8sEVHMrTdXVIdE=) 5: W__alkBuZRj8gzkXd-vzfVbHK2Q.roa (hash: 0kBZjg6sW5SXO3x1fTOof+1+5GjGHO22pAAtjoqsY2Q=) 6: cPf8LTmHuQNpFCebW57DX4X7lVg.roa (hash: EC/kmKIvEJeWcU36Llbivi0e5yeWXS5Hz9Nq+HvVB00=) 7: hmZ1mxVrzqjqx_1iP5op4hU25Ho.roa (hash: pfSMpgk/ODrUlGox+4Mj+0AxVVPVgzj1yETRt0uvYPU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:d3:3d:13:96:d4:6d:39:7c:2e:4f:e0:dc:8b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34 Validity Not Before: Feb 9 09:00:50 2026 GMT Not After : Feb 10 09:00:50 2026 GMT Subject: CN=89f471ae9d6c31a8f3e544e44ab272d8d81d550a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f4:37:32:6e:4f:a8:bb:5b:ff:e3:11:0c:64: 48:fa:45:2c:df:6a:22:b8:76:ed:9c:e6:31:05:c9: c9:c3:31:9a:4a:62:f7:62:b0:3c:c7:3f:0b:45:6b: 7a:ee:bf:d2:72:e9:eb:10:15:0d:c5:6f:61:66:5c: 19:61:7d:ce:82:a1:25:6a:0b:c2:e9:ca:0b:4c:80: e7:0d:ee:2d:5e:f7:5d:b3:36:50:f3:b7:b5:99:a8: 4d:fb:f2:56:62:67:5a:12:a2:89:1e:d4:69:82:eb: 8b:3c:cf:f8:7b:38:c2:d0:1b:ea:3c:65:5f:fc:6f: e4:d5:ef:d5:09:b6:9a:75:c9:71:0a:d3:1c:27:4b: 1e:a3:99:62:56:28:f8:d0:46:ec:14:7d:8e:3f:4c: 62:33:6b:2c:29:c9:a9:33:9d:12:2d:b1:6f:00:78: d8:c3:ae:64:d2:7d:41:4f:af:bf:77:1d:9a:78:dd: 05:cc:bf:97:b2:c5:92:11:26:31:ec:df:16:da:6b: b4:5b:41:85:d0:79:52:5b:95:79:b3:e2:41:17:fa: f6:ab:62:e0:48:3b:f0:76:b1:eb:1b:9f:d0:c2:8e: 4b:f6:4a:f3:54:dc:37:d3:22:02:07:aa:fd:f0:10: 8c:ee:73:20:19:72:f6:93:d0:60:76:c2:6b:e6:3e: 01:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F4:71:AE:9D:6C:31:A8:F3:E5:44:E4:4A:B2:72:D8:D8:1D:55:0A X509v3 Authority Key Identifier: keyid:1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:01:61:66:de:f6:f6:fe:13:84:77:a7:e0:49:39:12:75:20: 6f:ce:4e:5c:b9:3e:34:7a:b5:c6:e9:c7:7c:11:0e:04:fa:d2: e2:4e:90:c7:f4:5a:fa:df:dd:9f:f0:e7:33:64:40:02:29:5e: 65:b5:55:66:25:27:00:c3:38:b2:88:f7:b5:0b:fd:b1:b3:1d: 11:eb:ed:fc:86:ee:9c:d5:76:e8:34:c7:dd:21:1c:8d:0a:cf: 9e:f7:26:e4:24:67:8b:b7:17:21:53:fc:00:57:f5:fd:62:ee: 20:b7:3d:70:91:7e:21:f6:86:93:dd:d1:d2:0a:65:6e:b0:97: 2c:06:7b:7e:38:29:fe:45:f2:ed:46:f0:27:ad:a4:1a:35:04: 87:57:39:1a:04:05:c7:2c:e7:d2:08:1c:6e:13:51:bb:e3:26: 28:7a:98:73:e0:01:45:bf:0b:43:54:48:7e:ea:2d:9a:c0:09: 67:93:32:6f:93:65:74:d6:71:1e:aa:98:f6:5e:8e:44:c2:56: 1d:be:8e:6a:05:f0:0e:78:35:7c:a0:56:78:38:71:ef:24:ea: b8:15:e4:1b:e8:29:3a:7a:aa:25:f5:39:59:66:de:73:47:1e: c4:2a:8c:01:07:3a:24:2d:bf:e4:a1:42:d0:af:5e:6a:7a:02: 71:1a:8b:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBodM9E5bUbTl8Lk/g3Is8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFjMzkwYmZmNjVkY2VkY2E4MTNkN2ExMGQ3ZWMzMjhjMmY2 ZWFjMzQwHhcNMjYwMjA5MDkwMDUwWhcNMjYwMjEwMDkwMDUwWjAzMTEwLwYDVQQD Eyg4OWY0NzFhZTlkNmMzMWE4ZjNlNTQ0ZTQ0YWIyNzJkOGQ4MWQ1NTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7fQ3Mm5PqLtb/+MRDGRI+kUs32oi uHbtnOYxBcnJwzGaSmL3YrA8xz8LRWt67r/ScunrEBUNxW9hZlwZYX3OgqElagvC 6coLTIDnDe4tXvddszZQ87e1mahN+/JWYmdaEqKJHtRpguuLPM/4ezjC0BvqPGVf /G/k1e/VCbaadclxCtMcJ0seo5liVij40EbsFH2OP0xiM2ssKcmpM50SLbFvAHjY w65k0n1BT6+/dx2aeN0FzL+XssWSESYx7N8W2mu0W0GF0HlSW5V5s+JBF/r2q2Lg SDvwdrHrG5/Qwo5L9krzVNw30yICB6r98BCM7nMgGXL2k9BgdsJr5j4B6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIn0ca6dbDGo8+VE5EqyctjYHVUKMB8GA1UdIwQY MBaAFBw5C/9l3O3KgT16ENfsMowvbqw0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSERrTF8yWGM3Y3FCUFhvUTEtd3lqQzl1ckRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8zNDgxMDQtOGE0MS00OTQ5LTg1NTIt YTk3NjVlZGM3OTVjLzEvSERrTF8yWGM3Y3FCUFhvUTEtd3lqQzl1ckRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi8zNDgxMDQtOGE0MS00OTQ5LTg1NTItYTk3NjVlZGM3OTVj LzEvSERrTF8yWGM3Y3FCUFhvUTEtd3lqQzl1ckRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIgFhZt72 9v4ThHen4Ek5EnUgb85OXLk+NHq1xunHfBEOBPrS4k6Qx/Ra+t/dn/DnM2RAAile ZbVVZiUnAMM4soj3tQv9sbMdEevt/IbunNV26DTH3SEcjQrPnvcm5CRni7cXIVP8 AFf1/WLuILc9cJF+IfaGk93R0gplbrCXLAZ7fjgp/kXy7UbwJ62kGjUEh1c5GgQF xyzn0ggcbhNRu+MmKHqYc+ABRb8LQ1RIfuotmsAJZ5Myb5NldNZxHqqY9l6ORMJW Hb6OagXwDng1fKBWeDhx7yTquBXkG+gpOnqqJfU5WWbec0cexCqMAQc6JC2/5KFC 0K9eanoCcRqLNQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:43 2026 by rpki-client